Who touches your data (and why).
A complete list of third-party services that process data on our behalf. Transparency is the whole point.
Last updated: March 16, 2026
1. What Are Subprocessors
Subprocessors are third-party companies that process personal data on our behalf to help us run Spreadu. Each one is bound by a data processing agreement (DPA) and must meet our data protection standards.
We only share the minimum data necessary for each service to function.
2. Infrastructure and Hosting
| Hetzner Online GmbH | Server hosting, compute | Germany (EU) |
| Cloudflare, Inc. | CDN, DNS, DDoS protection, R2 object storage | Global (EU data residency) |
All primary data is stored on Hetzner servers in the European Union. Cloudflare R2 is used for file storage with EU data residency settings.
3. Payments
| Polar | Payment processing, subscription management | EU |
Polar handles all payment processing. We never see or store your full card number. We receive only transaction references and subscription status.
4. Email
| Resend | Transactional and marketing email delivery | US (DPA in place) |
Resend delivers emails on our behalf (verification, password resets, notifications, product updates). Email addresses and names are shared for delivery purposes only.
5. Analytics and Monitoring
| PostHog | Product analytics (anonymized usage data) | EU |
| Sentry | Error tracking and performance monitoring | US (DPA in place) |
PostHog collects anonymous usage data to help us improve the product. Sentry captures error reports to help us fix bugs. Neither service receives your photos or album content.
6. AI Services
| Google (Gemini API) | AI chat assistant, photo analysis, text embeddings | US (DPA in place) |
Google Gemini powers our AI assistant and photo analysis features. When you use these features, relevant data (chat messages, photo metadata) is sent to Google for processing. Google does not use this data to train their models under our agreement.
AI features are optional. If you don't use the AI assistant or photo analysis, no data is sent to Google.
7. Geolocation
| MaxMind | IP-based geolocation (GeoLite2 database) | Local database (no data sent externally) |
We use a locally hosted MaxMind database for IP geolocation. No data is sent to MaxMind's servers. The database file runs entirely on our infrastructure.
8. Internal Notifications
| Slack | Internal team notifications (system alerts only) | US |
We use Slack webhooks for internal system alerts (server health, error reports). No user personal data or photos are sent to Slack.
9. Changes to This List
We update this page whenever we add or remove a subprocessor. For significant changes (new categories of data processing), we'll notify affected users via email at least 30 days in advance.
If you have concerns about a new subprocessor, contact us within 30 days of the notification. We'll work with you to address your concerns or, if necessary, help you export and delete your data.
10. Questions?
Want to know more about how a specific subprocessor handles your data? We're happy to share details.
- Email: [email protected]
- Entity: Visual Playground SL
- Region: European Union